Resubmissions
26-11-2024 02:12
241126-cmtwkayme1 1026-11-2024 02:11
241126-cmgk8svqbk 1026-11-2024 01:45
241126-b6c7gstqhn 1026-11-2024 01:27
241126-bve7pswrbz 1026-11-2024 00:09
241126-afq5zszqen 1026-11-2024 00:00
241126-aagpcstjfz 1025-11-2024 22:42
241125-2mty1axjhn 1025-11-2024 22:17
241125-17gzhayqhv 1025-11-2024 22:00
241125-1wrdssvphr 1024-11-2024 21:57
241124-1vapna1rfx 10General
-
Target
nezurr.exe
-
Size
7.5MB
-
Sample
241126-b6c7gstqhn
-
MD5
92c47cbd15a6099a4da50d726015508c
-
SHA1
91e8ab7d6c699f8ed8247705d03cec2c3d9b97d8
-
SHA256
f4d4286a5b93621dac280247aa449c39a018aa4295e6f2c6a8dc80dfcfa64bf7
-
SHA512
00f7b1ff896e034108c4e66812605dbbcf3eaef712823a561ffc642282b45a5838bf706e449b42381f794ccb0aa74e41fcc72ecfe28b5e37e31fff24800e3946
-
SSDEEP
196608:qWgeIvwfI9jUC2gYBYv3vbWvGPI63p1e5zf:CaIH2gYBgDWgpwVf
Malware Config
Targets
-
-
Target
nezurr.exe
-
Size
7.5MB
-
MD5
92c47cbd15a6099a4da50d726015508c
-
SHA1
91e8ab7d6c699f8ed8247705d03cec2c3d9b97d8
-
SHA256
f4d4286a5b93621dac280247aa449c39a018aa4295e6f2c6a8dc80dfcfa64bf7
-
SHA512
00f7b1ff896e034108c4e66812605dbbcf3eaef712823a561ffc642282b45a5838bf706e449b42381f794ccb0aa74e41fcc72ecfe28b5e37e31fff24800e3946
-
SSDEEP
196608:qWgeIvwfI9jUC2gYBYv3vbWvGPI63p1e5zf:CaIH2gYBgDWgpwVf
Score8/10-
Command and Scripting Interpreter: PowerShell
Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
-
Loads dropped DLL
-
Enumerates processes with tasklist
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-